Beware of free wifi hotspots
Do you happen to hang out in star bucks, Macdonald’s or around a public library where internet browsing is actually free? Well I do, considering it gives me the opportunity to get some fresh air and a chance to check out what the world has to offer.
But beware, it comes at a price, a hidden one !! Free as it may sound, it is an unsecured network, and an idiot browsing the same network could sniff the traffic for passwords and confidential information. This is not funny at all because you could become a victim.
So how do I secure myself from such idiots, who think they have the right to steal and use my information, because I happen to like free surfing?
I use Tor. Tor helps me anonymize my web browsing and publishing, instant messaging, IRC, SSH, and other applications that use the TCP protocol.
It also comes bundled with an application named “Privoxy”, which prevents my computer from automatically sending personal information to websites.
Well so how much does it cost? Well everything comes at a price, and Tor certainly does come with a price too. It does cost me time because it is slow. It is slow because WebPages are transmitted through several servers around the world to get to the computer of the user.
You can download Tor from http://tor.eff.org/download.html.en . So Beware of free wifi hotspots, you have been warned.
hmm…thanks for the lesson…use free wi-fi spots all d time…am aware of some sniffing idiot banging in on my info..but i sorta ignore the thot…but this helps. tnx!
Comment by Labelle — 9/5/2007 @ 11:37 pm
Good points, but..
There are some concerns with Tor. Exit nodes on Tor shouldn’t be considered safe, and if you’re sending unencrypted traffic over Tor, there’s a decent chance that a malicious exit node could be sniffing your traffic. Late last year, several suspicious exit nodes were found that specifically only accepted unencrypted traffic. Some details about it are here:
http://czarism.com/tor-vs-security-sniffing-exit-nodes
Another issue with open wifi access points are malicious nodes that may be set up in popular areas (cities, near universities, coffee shops, etc) by someone who sniffs all the ethernet traffic coming out of his access point.
In short, make sure important traffic is encrypted (POP/IMAP mail, https banking sites). While even this can be broken by a carefully crafted man-in-the-middle attack, there’s so much easily intercepted unencrypted stuff floating around out there that hackers won’t bother with your encrypted traffic.
Comment by Robbie Honerkamp — 3/14/2008 @ 3:44 am